Thank you Jesse, we have implemented this change. IMSS is now scanning and delivering legit .zips and dropping all pw protected .zips. =20 IMO the BAGLE virus has caused the death of p\w protected .zips. It was only a matter of time until someone took advantage of that weakness. =20 _____ =20 =20 Brian Claus, A+, Network+, MCP Network Administrator WESCO Distribution, Inc. 225 West Station Square Drive, Suite 700 Pittsburgh, PA 15219-1122 Phone: 412-454-2412 Fax: 412-454-2540 bclaus@xxxxxxxxxxxxx <mailto:bclaus@xxxxxxxxxxxxx>=20 _____ =20 -----Original Message----- From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx]On Behalf Of King, Jesse Sent: Thursday, March 04, 2004 8:37 AM To: 'thin@xxxxxxxxxxxxx' Subject: [THIN] Re: OT: Security response to BAGLE virus (password protected .z ips) We have the trend a/v suite as well.=20 At the gateway, with IMSS, you can have it delete, deliver, or quarantine password protected files. FYI.. -----Original Message----- From: Claus, Brian [mailto:BClaus@xxxxxxxxxxxxx]=20 Sent: Thursday, March 04, 2004 8:28 AM To: thin@xxxxxxxxxxxxx Subject: [THIN] OT: Security response to BAGLE virus (password protected .z ips) Just wondering what others are doing to combat the latest BAGLE worm. = =3D It's password protected so standard AV won't scan into it. How is =3D everyone else handling delivery of .zip files now? We're using the Trend Micro AV suite. Do you think the latest password protected BAGLE worm has caused the =3D demise of password protected .zip files? My immediate opinion in the matter is that password protected .zip files =3D will now be treated with the same delivery restrictions that the .exe, = =3D .scr, .pif, .vbs have come under but I'm not aware of any AV software or =3D other means to differentiate scanning options between p\w protected .zip =3D files and non p\w protected .zip files. Thanks, =3D20 _____ =3D20 =3D20 Brian Claus, A+, Network+, MCP Network Administrator WESCO Distribution, Inc. 225 West Station Square Drive, Suite 700 Pittsburgh, PA 15219-1122 Phone: 412-454-2412 Fax: 412-454-2540 bclaus@xxxxxxxxxxxxx <mailto:bclaus@xxxxxxxxxxxxx>=3D20 _____ =3D20 ******************************************************** This weeks sponsor triCerat Inc. triCerat makes your job easier by offering essential applications to eliminate your printing, policy and profile, and your application management problems. http://www.triCerat.com=20 ********************************************************** Useful Thin Client Computing Links are available at: http://thin.net/links.cfm *********************************************************** For Archives, to Unsubscribe, Subscribe or=20 set Digest or Vacation mode use the below link: http://thin.net/citrixlist.cfm ******************************************************** This weeks sponsor triCerat Inc. triCerat makes your job easier by offering essential applications to eliminate your printing, policy and profile, and your application management problems. http://www.triCerat.com=20 ********************************************************** Useful Thin Client Computing Links are available at: http://thin.net/links.cfm *********************************************************** For Archives, to Unsubscribe, Subscribe or=20 set Digest or Vacation mode use the below link: http://thin.net/citrixlist.cfm ******************************************************** This weeks sponsor triCerat Inc. triCerat makes your job easier by offering essential applications to eliminate your printing, policy and profile, and your application management problems. http://www.triCerat.com ********************************************************** Useful Thin Client Computing Links are available at: http://thin.net/links.cfm *********************************************************** For Archives, to Unsubscribe, Subscribe or set Digest or Vacation mode use the below link: http://thin.net/citrixlist.cfm